Skip to Content
Self Hosting

Self Hosting

OneGlanse is built for private infrastructure and full data ownership.

Service Topology

  • landing (Next.js): public marketing site on 127.0.0.1:3000
  • web (Next.js): app + API on 127.0.0.1:3001
  • docs (Next.js): documentation on 127.0.0.1:3002
  • agent-worker: async provider execution worker
  • redis: queue and coordination backend
  • db (Postgres): auth/workspace/transactional data
  • clickhouse: analytics and reporting data
  • migrate: one-shot schema migration job

Startup Dependencies

  • agent-worker depends on healthy redis
  • web depends on healthy db, redis, clickhouse, plus successful migrate
  • migrate depends on healthy db

Networking Model

  • Public ingress: Nginx only (80/443)
  • App containers are loopback-bound (127.0.0.1) and not internet-exposed
  • Data services are internal-only Docker networks

Security Baseline

  • Use strong unique values for BETTER_AUTH_SECRET, INTERNAL_CRON_SECRET, and REDIS_PASSWORD.
  • Restrict SSH and enforce key-based authentication.
  • Keep egress controls for agent proxy traffic where required.
  • Back up db_data, clickhouse_data, and redis_data volumes.
Proxy SetupTroubleshooting